CLAIM AMENDMENTS 

L (Currently amended) A method for automatic installation of a digital certificate on a 
notwork d e vice cable modem in a data-over-cable system, the method comprising: 

determining whether a digital certificate is installed on the cable modem notwork d e vic e; 

if not, 

generating a digital certificate filename on the cable modem network d e vic e; 

sending a digital certificate request including the digital certificate filename to a 
predetermined network server; 

receiving a digital certificate file including at least one digital certificate from the network 
server; and 

storing the at least one digital certificate received from the network server on the cable 
modem netv/ork d e vic e; 

wherein the digital certificate is required to authenticate the cable modem on a Cable 
Modem Termination System (CMTSV 

2. (Original) A computer readable medium having stored therein instructions for causing 
a processor to execute the method of claim 1 . 

3. (Currently amended) The method of claim 1, wherein the network device compris e s a 
cabl e mod e m, and th e network server comprises a Trivial File Transfer Protocol server. 
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4. (Original) The method of claim 1, wherein the digital certificate comprises an X. 5 09 
security digital certificate. 

5. (Currently amended) The method of claim 1, wherein the step of generating a digital 
certificate filename comprises using a type of the cable modem network d e vic e, a physical 
address of the cable modem network d e vic e and an authentication data string. 

6. (Currently amended) The method of claim 5, wherein the authentication data string is 
generated on the cable modem network device by applying a hash function to at least one 
configuration setting associated with the cable modem n e twork d e vic e. 

7. (Original) The method of claim 6, wherein the at least one configuration setting 
comprises a MAC address, a serial number or a secret string. 

8. (Currently amended) The method of claim 1, further comprising: 

obtaining a globally routable network address on the cable modem network d e vice prior 
to sending the digital certificate request to the network server; and 

employing the globally routable network address for sending the digital certificate request 
to the network server. 

9. (Currently amended) The method of claim 8, wherein the step of obtaining the globally 
routable network address on the cable modem n e twork d e vic e comprises: 
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retrieving network address information from at least one data packet sent from at least 
one customer entity; and 

obtaining a physical address of a network gateway associated with the at least one 
customer entity. 

10. (Original) The method of claim 9, wherein the network address information 
comprises on Internet Protocol address and a Medium Access Control address associated with the 
customer entity. 

11. (Currently amended) The method of claim 1, further comprising: 

validating the at least one digital certificate received from the network server prior to 
storing the at least one digital certificate on the cable modem n e twork d e vic e. 

12. (Original) The method of claim 1, wherein the at least one digital certificate 
comprises a device digital certificate. 

13. (Currently amended) The method of claim 12, wherein the at least one digital 
certificate further comprises a cable modem n e twork devic e manufacturer digital certificate. 

14. (Currently amended) A method for providing digital certificates to at least one cable 
modem network device in a data-over-cable system, the method comprising: 
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receiving a digital certificate request including a digital certificate filename on a network 
server from a cable modem network d e vic e; 

authenticating the request on the network server using at least one parameter specified in 
the digital certificate filename; 

generating at least one digital certificate for the cable modem network devic e; and 

providing the at least one digital certificate from the network server to the cable modem 
n e twork devic e ; 

wherein the digital certificate is required to authenticate the cable modem on a Cable 
Modem Termination System fCMTS) . 

15. (Original) A computer readable medium having stored therein instructions causing a 
processor to execute the method of claim 14. 

16. (Currently amended) The method of claim 14, wherein the filename comprises a type 
of the cable modem network d e vic e, a physical address of the cable modem n e twork devic e, and 
authentication data string generated on the cable modem network d e vic e. 

17. (Original) The method of claim 16, wherein the step of authenticating the request 
using the at least one parameter specified in the digital certificate filename comprises: 

generating an authentication data string on the network server; and 
comparing the authentication string generated on the network server with the 
authentication data string specified in the received digital certificate filename. 
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18. (Original) The method of claim 14, wherein the network server comprises a Trivial 
File Transfer Protocol server. 



19. (Currently amended) The method of claim 14, wherein the at least one digital 
certificate for the cable modem network device is generated on the network server. 



20. (Currently amended) The method of claim 14, fiirther comprising: 

requesting a digital certificate from a second network server upon receiving the digital 
certificate request from the cable modem n e twork d e vic e; and 

receiving the digital certificate on the network server from the second network server, 
wherein the second network server comprises a certificate authority server. 

21. (Currently amended) A system for dynamic digital certificate installation in a data- 
over-cable network, the system comprises, in combination: 

a cable modem n e twork d e vic e configured to request a digital certificate from a 
predetermined network server; and 

the network server configured to dynamically generate a digital certificate upon receiving 
a digital certificate request from the cable modem network d e vic e, and fiirther configured to 
provide the digital certificate to the cable modem n e twork d e vice; 

wherein the digital certificate is required to authenticate the cable modem on a Cable 
Modem Termination Svstem (CMTS) . 
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22. (Currently amended) The system of claim 21, wherein the n e twork d e vice compris e s a 
cabl e modem, and th e network server comprises a Trivial File Transfer Protocol ("TFTP") 
server. 

23. (Currently amended) The system of claim 21, wherein the network server's address is 
installed on the cable modem network d e vic e prior to requesting the digital certificate from the 
predetermined network server. 

24. (Currently amended) The system of claim 21, wherein the cable modem n e twork 
d e vic e is further arranged to install the digital certificate in a memory unit upon receiving the 
digital certificate from the network server. 

25. (Original) The system of claim 21, wherein the digital certificate comprises an X.509 
certificate. 



7 

McDonnell Boehnen Hulbert & Berghoff LLP 
300 South Wacker Drive 
Chicago, IL 60606 
Telephone: (312)913-0001 



